Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e35332e302f32342d3234203d3e203234323033.roa
File: 3134302e3231332e35332e302f32342d3234203d3e203234323033.roa (raw, json)
Hash identifier: Izm9UGpJf34Ug62z36oBQsoXJeH+LM9QLom/6HhVroM=
Subject key identifier: AD:8A:65:2A:03:81:B8:47:8E:43:2D:C1:74:96:89:40:57:7A:73:83
Certificate issuer: /CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Certificate serial: 6449F62D32368D62917302690739827F4AE213CC
Authority key identifier: 10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e35332e302f32342d3234203d3e203234323033.roa
Signing time: Tue 19 Apr 2022 07:00:00 +0000
ROA not before: Tue 19 Apr 2022 06:55:00 +0000
ROA not after: Tue 18 Apr 2023 07:00:00 +0000
asID: 24203
IP address blocks: 140.213.53.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
64:49:f6:2d:32:36:8d:62:91:73:02:69:07:39:82:7f:4a:e2:13:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B
Validity
Not Before: Apr 19 06:55:00 2022 GMT
Not After : Apr 18 07:00:00 2023 GMT
Subject: CN=AD8A652A0381B8478E432DC174968940577A7383
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:2a:14:44:8c:68:50:ea:5f:31:c7:fe:b2:34:
df:77:78:1e:67:da:a2:e2:20:ed:60:59:e1:bf:f6:
eb:46:92:8d:5a:d3:dc:ff:a6:a9:43:58:de:1b:2c:
25:c5:d6:d4:59:dc:02:7e:1f:aa:ea:7a:0b:3c:85:
56:93:5f:39:aa:3b:a0:08:ae:f7:3d:94:63:d4:c6:
0b:b0:b2:f3:a3:0a:11:33:cd:0d:a9:c0:4c:99:41:
56:26:93:37:d0:3d:98:51:71:f6:4b:91:f1:3b:9d:
53:bd:f4:56:9e:7d:9b:c6:0f:4b:51:5c:39:d5:29:
a9:31:0f:6e:9a:06:3d:ce:78:51:46:0d:53:56:b3:
8c:db:fb:b0:3f:34:ce:45:71:a9:5c:c9:f9:33:49:
21:71:2a:65:a4:27:2d:ce:b9:91:d0:10:e8:9b:e1:
5e:6a:64:ae:be:d9:e9:2d:69:86:49:f7:79:67:e9:
2c:f1:6d:08:9e:24:2b:fb:85:28:f5:53:05:88:46:
64:3e:aa:5a:89:1f:06:6d:4a:33:aa:42:65:a7:0d:
e6:8c:4c:54:3c:5b:53:12:f9:82:02:c3:98:e7:d1:
d8:8c:85:fc:13:69:4b:45:3c:c9:82:13:04:21:22:
ae:cf:3a:9f:08:2f:4e:9a:92:a6:0d:22:93:af:41:
49:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:8A:65:2A:03:81:B8:47:8E:43:2D:C1:74:96:89:40:57:7A:73:83
X509v3 Authority Key Identifier:
keyid:10:BA:B7:90:7D:95:3A:0D:5F:DE:B5:C2:0C:9F:29:BC:FC:66:0A:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/10BAB7907D953A0D5FDEB5C20C9F29BCFC660A1B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/1/3134302e3231332e35332e302f32342d3234203d3e203234323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
140.213.53.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:b2:6b:f6:96:c2:28:bd:78:d8:a2:60:b6:39:5c:04:85:25:
ad:92:79:67:b4:13:0d:df:9f:c3:a4:97:b3:44:80:9f:af:41:
ce:1e:77:c8:47:b2:94:f8:2c:0d:c0:61:86:55:fa:0e:d4:9f:
7b:0e:f0:37:d1:b9:f1:25:6d:62:db:99:78:18:8b:11:14:c0:
b6:24:45:c7:2c:68:06:54:54:da:88:5c:3b:e3:b6:ea:31:67:
66:b2:26:1a:e6:ad:ca:f1:6d:71:0a:22:95:43:e3:d4:da:57:
50:b6:19:2d:10:78:0d:41:57:f0:30:b4:44:f0:88:d6:c4:a8:
50:9a:9a:38:43:49:9a:25:b2:0e:f2:cf:c3:35:bf:3a:62:03:
fb:2f:d2:00:b3:c3:ba:d5:02:5a:e1:13:cd:20:3f:70:88:41:
17:67:4e:a0:8f:97:12:ea:2e:ea:7a:59:5d:22:fb:d3:01:a7:
ab:70:4f:7e:d7:e2:e1:01:00:29:87:34:bd:4d:16:4a:6a:16:
cd:cf:d8:7f:95:72:33:b7:92:7c:d7:71:91:e2:9c:d0:c7:2c:
c9:4b:0c:81:38:80:29:6b:46:68:ad:dd:93:f4:e7:a5:d9:b0:
f5:9a:90:a6:45:5b:35:79:81:34:73:bb:c8:a6:7a:cc:f0:72:
ff:8f:cb:81
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgIUZEn2LTI2jWKRcwJpBzmCf0riE8wwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMTBCQUI3OTA3RDk1M0EwRDVGREVCNUMyMEM5RjI5QkNG
QzY2MEExQjAeFw0yMjA0MTkwNjU1MDBaFw0yMzA0MTgwNzAwMDBaMDMxMTAvBgNV
BAMTKEFEOEE2NTJBMDM4MUI4NDc4RTQzMkRDMTc0OTY4OTQwNTc3QTczODMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmKhREjGhQ6l8xx/6yNN93eB5n
2qLiIO1gWeG/9utGko1a09z/pqlDWN4bLCXF1tRZ3AJ+H6rqegs8hVaTXzmqO6AI
rvc9lGPUxguwsvOjChEzzQ2pwEyZQVYmkzfQPZhRcfZLkfE7nVO99FaefZvGD0tR
XDnVKakxD26aBj3OeFFGDVNWs4zb+7A/NM5FcalcyfkzSSFxKmWkJy3OuZHQEOib
4V5qZK6+2ektaYZJ93ln6SzxbQieJCv7hSj1UwWIRmQ+qlqJHwZtSjOqQmWnDeaM
TFQ8W1MS+YICw5jn0diMhfwTaUtFPMmCEwQhIq7POp8IL06akqYNIpOvQUkxAgMB
AAGjggIyMIICLjAdBgNVHQ4EFgQUrYplKgOBuEeOQy3BdJaJQFd6c4MwHwYDVR0j
BBgwFoAUELq3kH2VOg1f3rXCDJ8pvPxmChswDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80
YmRiMWUwYS1hNGVjLTQ5ZGItYmU4OS04ZDdlN2ZjMmMyMjcvMS8xMEJBQjc5MDdE
OTUzQTBENUZERUI1QzIwQzlGMjlCQ0ZDNjYwQTFCLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzEvMTBCQUI3OTA3RDk1M0EwRDVGREVCNUMyMEM5RjI5QkNGQzY2
MEExQi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRiZGIxZTBhLWE0ZWMtNDlkYi1i
ZTg5LThkN2U3ZmMyYzIyNy8xLzMxMzQzMDJlMzIzMTMzMmUzNTMzMmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzIzNDMyMzAzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAIzVNTANBgkqhkiG
9w0BAQsFAAOCAQEAsLJr9pbCKL142KJgtjlcBIUlrZJ5Z7QTDd+fw6SXs0SAn69B
zh53yEeylPgsDcBhhlX6DtSfew7wN9G58SVtYtuZeBiLERTAtiRFxyxoBlRU2ohc
O+O26jFnZrImGuatyvFtcQoilUPj1NpXULYZLRB4DUFX8DC0RPCI1sSoUJqaOENJ
miWyDvLPwzW/OmID+y/SALPDutUCWuETzSA/cIhBF2dOoI+XEuou6npZXSL70wGn
q3BPftfi4QEAKYc0vU0WSmoWzc/Yf5VyM7eSfNdxkeKc0McsyUsMgTiAKWtGaK3d
k/Tnpdmw9ZqQpkVbNXmBNHO7yKZ6zPBy/4/LgQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:07 2024 by rpki-client on console-fra.rpki-client.org